1
Creating permissions
Users of our app can have the following permissions:
domain.delete_domain
domain.dns.create_record
domain.dns.read_record
domain.dns.update_record
domain.dns.delete_record
domain.create_domain
domain.read_domain
domain.update_domain

2
Creating roles
And we define the following roles:
Create them in your dashboard too.
admin
: An admin can do everythingdns.manager
: Can create, read, update and delete dns records but not access the domain itselfread-only
: Can read domain or dns record information.

3
Connecting
For each role, we need to connect the permissions it should have.
Go to /app/authorization/roles and click on the role to go to the permissions screen.

4
Create a key
Now that we have permissions and roles in place, we can connect them to keys.
You can connect a role to your key by clicking on the checkbox.Let’s give this key the 
As you can see, now the key now contains 2
- In the sidebar, click on one of your APIs
-
In the breakcrumb navigation on the top click Reqests and then keys
- Select one of your existing keys by clicking on it
-
Scroll down to the
Roles
section if not visible.
/app/keys/key_auth_???/key_???

dns.manager
and read-only
roles.
A toast message should come up in the lower corner when the action has been completed.
roles
and 5 permissions
shown just above the Roles section:5
Verifying Permissions
Now you can verify this key and perform permission checks. Read more